00:52
<anton-latukha[m]>
Good time to everyone. Someone knows how to get the `nixpkgs` commit (of `nixos` channel) from which the generation is built? It is quite useful to recommend someone the the commit right away.

00:53
<anton-latukha[m]>
* Good time to everyone. Someone knows how to get the `nixpkgs` commit (of `nixos` channel) from which the generation is built? It is quite useful to recommend someone the commit right away.

10:44
<pistache_>
what kind of things should be tested in NixOS tests ?

10:45
<pistache_>
I'm adding "hitless reload" support in the haproxy service, but I'm not sure if I should only be testing the reloading operation itself, or if I should make sure that there are no lost HTTP requests during the reload

11:26
<hadrian[m]>
<azazel "hadrian: sorry, I don't follow y"> I'm sure Mike / EatThem can elaborate better than I, but it's my understanding that if this change is implemented that a pull request from a non-forked repo can trigger a hotfix on any machine onto which malicious code has been placed into the ./dist directory? e ode

11:26
<typetetris>
clever: I was somehow expecting, that there would also be a key outside of serviceConfig for this, too. To avoid the lowercase/uppercase mixing .. but of course, its completely irrelevant :)

12:57
<alj[m]>
I rebooted my device after yesterdays rebuild (went over night, my changes worked out, very proud of that) and now i want to make a change and this stupid thing wants to rebuild gcc, perl and similar stuff AGAIN. looking at the store paths there is no gcc in there, even tho i just built that shit yesterday night. What the heck is going on? Does anyone know?

12:57
<simpson>
kaliumxyz: How do you want to handle transactions? It's hard to beat the nix-instantiate/nix-build/nix-shell API, just emitting a text .nix file to a temporary directory or providing it inline.

12:57
<alj[m]>
I enabled automatic garbage collection, but gcc and perl are needed no? they should not get cleaned up right? I just dont know anymore

12:59
<simpson>
alj[m]: Build tools are only needed during the build, and GC is smart enough to remove them if there's no builds happening. You can either do GC less often, or you could explicitly depend on certain build tools, effectively "pinning" them. "pin" in the GC sense, not the package-manager versioning sense!

13:03
<alj[m]>
<simpson "alj: Build tools are only needed"> so you're saying I've been deleting gcc and other buildtools every night, without knowing? but this stuff is *needed* to run nixos-rebuild! What does nixos expect me to do??? My other Nixos system doesnt shred itself every night when GC is ran! wtf. Also how do i "pin" that?

13:04
<simpson>
alj[m]: I'm looking to see if there's an elegant technique; the inelegant technique is to add whatever desired tool to environment.systemPackages.

13:05
<alj[m]>
I'm sorry if i sound rude, but this is quite irritating. I've already lost a whole day to this exact crap

13:11
<kaliumxyz>
I'm currently trying to port a terraform plugin for nix to pulumi but would also like to extend the capabalities of the plugin and eventually add some support for langauge bindings to nix so that you can get code completion, type checking, etc.

13:11
<typetetris>
I don't get it, somehow I cant use stuff from `EnvironmentFile` in `ExecStartPre` strange.

13:14
<simpson>
Hm. I can't see this being a good match. Nix is more like a protocol for a directory, like git, rather than a language. The Nix expression language is just the language for instructing the reference toolchain.

13:21
<kaliumxyz>
The idea would be to have typedefinitions for nixpkgs in the language you want to work in, then describe your desired nix using the langauge you want to work in. Pulumi will provision and manage the server and the pulumi plugin for nix will compile the nix files, ssh into the server and run the nix bfiles.

13:22
<kaliumxyz>
Just use whatever goes as a struct in the langauge you want to work in.

14:07
<drozdziak1[m]>
kdenlive appears to be qt-borked on my 20.03 system (qt can't load "xcd" upon project render). If I understand the guides correctly I need to add `wrapQtAppsHook` to `nativeBuildInputs` on the derivation. How do I bring it into scope? I'm trying to experiment with this on the repl

16:35
<emily>
if we have distinct instantiate -> build stages, we should have distinct fetch -> instantiate -> build stages rather than mingling the first two together, flakes moves a bit closer to that model

16:35
<infinisil>
emily: Since fetchGit now supports recursive modules, I have been dreaming of this being the way to manage dependencies. Everybody uses git submodules and the end-user just uses `fetchGit { fetchSubmodules = true }` to get all dependencies in one single evaluation step

17:28
<T0pH4t>
infinisil: I've been looking into my issue more and I think i have tracked down the problem. Not sure if this is a nix bug, but its seems the sha256 is generated post configure of a package. Meaning I have a cmake file that places some header files during cmake configure and that seems to be screwing over the sha256

18:37
<T0pH4t>
sphalerite: i'm trying to publish a package that is using c++, its just a simple package that fetches code from git and then builds it with cmake. The probablem is the sha256 is failing to validate after cmake is ran

18:37
<T0pH4t>
if i disable the configure/build of hte package the sha256 checks out

18:40
<skomorokh>
Hi! I'm intimidated but intrigued, I hope this is as good a place as any to ask very naive questions that arise while skimming the docs as I work up the courage to start trying to replace Debian with this on a server...

18:40
<T0pH4t>
its a bit wonky right now since i have been debuging htis issue since yesterday

18:53
<skomorokh>
Can you opt something out of Nix-ness? I have a commercial PHP script my brother uses for invoicing, it has an auto updater thing that I think I'd rather just use than bothering to build a package for it that I can't even distribute anyone and have to fiddle with it on every version... is there a cookbook type example of that sort of practical compromise? (though the cookbook link seems to be down)

19:08
<srhb>
skomorokh: But you can always try and see how far you can get with just giving it a shell with the "right dependencies"

19:08
<skomorokh>
srhb: That's kind of what I was thinking. Was hoping it won't assume much at all being PHP so is expecting to just be dumped somewhere and the updater hopes to run as a user with sufficient permissions to overwrite itself, that kinda thing.

19:10
<srhb>
If it's not too bothersome, you may find that you feel the same way.

19:10
<skomorokh>
Was hoping it was usual enough usecase (autoupdating php webapps) that someone would have recollection of a guide to this sorta thing eg. maybe an expression that kinda sets up everything around it modulo the software itself and any specific version.

19:13
<skomorokh>
srhb: I imagine I will feel that way about most things, that's why I'm interested in Nix after all--why bother otherwise right :) I just didn't want to deal with this one since I mostly just leave it alone and occasionally back it up.

19:14
<vyorkin>
I wonder if I can use the ssh url... it seems like I can't, because it says "error: 'git@github.com:vyorkin/dotsecrets.git' is not a valid URL"

19:42
<RRedcroft>
then no it doesnt look like it, how do i get them into houdini?

19:44
<RRedcroft>
i do have a single binary /nix/store/i6vw5q8mglx1xy9d0hw8sh9qbzxg7jls-houdini-18.0.460/bin/houdini-18.0.460

19:44
<srhb>
RRedcroft: I'm not sure with FHS stuff. :) You may have to look at some of the other FHS launchers in nixpkgs to figure it out. I was about to suggest steam-run as one that I know does it, but that looks pretty complex.

19:54
<cole-h>
infinisil: Basically copying your tranmission setup. However, setting `home = "/var/lib.torrent"` and then starting the unit fails to create that directory (permission denied). Did you get this as well?

19:54
<unclechu>
srhb: how nix find derivation paths when evaluating a derivation like this? does it hooks all the nix interpolations in strings?

19:55
<unclechu>
or any access to the values and when a value has `type = "derivation"` it adds this value to the dependencies list when builds a derivation?

20:02
<Bryan[m]>
unclechu: I remember seeing string context be a sticking point for hnix at one point - I guess nix really does just keep track of which store path is referred to and uses it for dependency tracking.

20:02
<gchristensen>
unclechu: Nix remembers that you interpolated a package in to the string, and attaches that information to the string as String Context

20:02
<Bryan[m]>
Reminds me that I also want to actually read the thesis sooner rather than later

20:03
<srhb>
unclechu: But the short story is that each store path in all the attributes of the input is (at least) a build time dependency

20:04
<unclechu>
Bryan: so said "nix does the grepping for /nix/store/* pattern"? otherwise i could imagine that nix track all the operations with values and record resolved values which has `type = "derivation"`.

20:17
<cole-h>
srhb: The main reason I ask is because when setting user, group, and home of `services.transmission`, the prestart script fails to create /var/lib/torrent, but if I don't manually set the user and group, it gets created just fine...

20:50
<unclechu>
so, the assumption that derivation is just an attrset with proper `type` attribute is wrong. that page is a bit misleading, it tells nothing about underlying implicit context a real derivation has

21:03
<chin-tastic>
Hello friends. Is anyone aware of any examples of building derivations out of webcomponents/react components? (I'm not a javascript expert, so this has been particularly difficult.)

21:18
<hexagoxel>
are there any best practices around overlays and directory-specific behaviour? I have a package that can be built in two ways: a) can be built on a range of recent official nixpkgs revisions b) requires a custom overlay. Locally I want to use b) by default, but I am hesitant to hardcode that into default.nix/shell.nix

21:47
<cole-h>
infinisil: I'm wondering if you know how I would set up nginx (or anything) to redirect some URL like `transmission.lan` to `localhost:9091/transmission/web` and `sonarr.lan` to `localhost:8989`?

23:13
<hpfr[m]>
using the systemd module to write some services for suspend and post-resume. I've specified wantedBy but when I view the generated service files in /etc/systemd/system, they don't have a wantedBy line? does this matter?

23:58
<agam>
Hi, question about "local dotfiles" with Nix, specifically my `~/.zshrc`. I've been using this for a while now: https://github.com/agam/dotfiles/blob/master/.zshrc, and obviously can't refer to an _absolute_ path for the `antigen.zsh` helper script, what's the right way to do this in Nix?